Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/qaoOHo7IK32pHEhXhOIRLLtba6E.roa
File: qaoOHo7IK32pHEhXhOIRLLtba6E.roa (raw, json)
Hash identifier: sorwQuZ/RLLCgJTNWowCIfCTHfcibM0qOnELaIucpFw=
Subject key identifier: A9:AA:0E:1E:8E:C8:2B:7D:A9:1C:48:57:84:E2:11:2C:BB:5B:6B:A1
Certificate issuer: /CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2
Certificate serial: 0A5B
Authority key identifier: 0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/qaoOHo7IK32pHEhXhOIRLLtba6E.roa
Signing time: Thu 15 Sep 2022 02:44:13 +0000
ROA not before: Thu 15 Sep 2022 02:44:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131593
IP address blocks: 43.251.60.0/22 maxlen: 22
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2651 (0xa5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2
Validity
Not Before: Sep 15 02:44:13 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A9AA0E1E8EC82B7DA91C485784E2112CBB5B6BA1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ee:55:e9:97:39:a7:ac:31:95:3b:21:87:85:
87:d0:fc:12:8e:e4:71:cd:94:df:04:64:15:2b:2c:
b0:b4:82:81:3e:64:ca:e9:a0:07:1b:1b:83:f4:99:
8b:e4:48:59:63:1c:3a:85:10:88:63:55:2d:6e:a8:
04:62:3d:7f:bf:fb:72:c3:3c:74:b5:a6:8d:87:fb:
e3:9d:c5:0a:5c:e0:d3:f8:75:ed:a2:d7:d1:40:42:
21:ff:ab:0c:44:d6:97:cb:94:ad:c6:c8:ca:7a:95:
d2:26:2a:7f:af:4d:18:87:44:78:a9:3d:a7:75:f0:
cb:4c:58:ca:0e:f0:da:5f:82:3c:33:46:98:43:71:
16:07:2c:f3:ae:53:80:c7:2d:cd:aa:1b:99:c2:23:
53:10:16:ed:4f:b3:73:3e:e3:2a:62:49:60:ba:23:
c9:59:0d:87:2c:84:33:d9:9b:83:2b:2d:ca:3c:60:
0b:42:ee:67:06:05:53:af:49:1a:f0:d0:f8:5f:91:
55:f2:d7:85:98:ea:bf:a5:8d:44:f7:9b:22:d2:6f:
e9:93:6a:7e:d8:55:04:c4:b6:81:f0:7c:af:41:39:
4e:15:36:7d:42:59:a3:7d:04:34:bb:c6:d4:7e:13:
87:a5:7a:39:7f:12:07:62:12:b1:87:b4:24:c4:5d:
50:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:AA:0E:1E:8E:C8:2B:7D:A9:1C:48:57:84:E2:11:2C:BB:5B:6B:A1
X509v3 Authority Key Identifier:
keyid:0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/qaoOHo7IK32pHEhXhOIRLLtba6E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.251.60.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:d9:02:05:b9:68:4c:1b:58:e0:39:3f:4e:06:ec:3a:1b:65:
11:48:35:8f:6c:21:0e:c6:e5:57:fe:d6:7b:69:d1:c8:c3:16:
30:24:91:58:80:98:fe:f7:83:fa:6e:23:0a:00:17:66:b6:1a:
96:15:93:40:07:35:e1:b4:c9:9a:1c:f8:66:d6:c4:8c:00:30:
10:81:73:8b:5c:8e:a2:59:59:d3:0a:fa:92:2e:64:8f:22:7c:
62:a4:34:f2:5b:34:00:e9:a2:bc:b6:95:9c:c5:9a:75:13:c5:
65:23:b4:63:1c:ca:ee:89:1e:fb:35:42:12:25:7f:92:a1:77:
f1:f4:5c:f6:b1:46:4f:ac:25:e5:dc:99:c2:7e:97:c5:b7:51:
f9:03:ba:64:71:b1:3f:9f:0e:c7:36:ef:5f:56:0a:8c:1e:76:
fb:4b:39:b3:7f:ee:b3:9d:7a:f5:e7:42:ad:66:5c:7f:fa:66:
ab:1a:34:65:2b:c6:d7:ff:47:e7:e6:52:43:38:79:20:3c:00:
ba:e8:3d:1e:11:03:76:ba:50:7c:db:61:08:35:f0:6e:a2:e3:
f2:34:d3:60:d1:87:02:6b:b3:e0:b7:0a:d6:f6:74:92:a2:04:
e8:da:6e:ae:e0:6c:f0:24:95:f4:50:5c:e3:df:c7:13:ed:f8:
9c:c4:70:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:37:42 2025 by rpki-client